CVE-2025-37930

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, specifically in the Nouveau component. The issue arises when a fence is signaled through a means other than the expected nouveau fence signal() function, such as nouveau fence done(), which can lead to a race condition. In this scenario, a signaled fence remains in the pending list until it is removed by nouveau fence update(). If nouveau fence context kill() runs during this time, it attempts to set an error code on an already signaled fence, resulting in a bug. The fix involves having nouveau fence context kill() check if a fence has been signaled.

Recommendations For the Linux kernel, apply the fix that modifies nouveau fence context kill() to check for signaled fences before attempting to set an error code. At the moment, there is no information about a newer version that contains a fix for this vulnerability.